What is claimed is: 

.-- 

1 1. A system comprising: 

2 a blade device; and 

3 chassis management logic, the chassis management logic to determine whether one or 

4 more capabilities associated with the blade device match a capability policy. 

l 

1 2. The system of claim 1 , further comprising: 

2 a data communication pathway coupled to the blade device and to the chassis 

3 management logic. 

4 

4 3. The system of claim 1, wherein: 

5 the chassis management logic is further to isolate the blade device from a computing 

6 domain responsive to determining that the blade device capabilities do not match the 

7 capability policy. 

1 4. The system of claim 1, further comprising: 

2 a plurality of blade devices; 

3 wherein each of the plurality of blade devices is coupled to the data communication 

4 pathway; and 

i 

5 
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1 wherein the chassis management logic is further to determine, for at least one of the 

2 plurality of blade devices, whether blade capabilities associated with the at least one blade 

3 device match the capability policy. 

1 5. The system of claim 4, wherein: 

2 the chassis management logic is further to isolate from the computing domain any of the 

3 plurality of blade devices whose associated capabilities do not match the capability policy. 

1 

1 6. The system of claim 1, wherein: 

2 . the chassis management logic is further to determine whether the blade device is trusted. 
1 

1 7. The system of claim I, further comprising: 

2 a baseboard memory controller, wherein the baseboard memory controller is to control 

3 communication between the blade device and the chassis management logic. 

l 

1 8 . The system of claim 1 , wherein: 

2 the blade device includes logic to perform boot processing. 
1 

1 9. The system of claim 8, wherein: 
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2 the chassis management logic is further to generate a failure indicator value responsive to 

3 determining that the blade device capabilities do not match the capability policy; and 

4 the blade device is to, responsive to the failure indicator value, terminate the boot 

5 processing. 

1 

1 10. The system of claim 1, further comprising: 

2 a chassis to receive the blade device. 
1 

1 11. A method comprising: 

2 determining if one or more capabilities associated with a blade device match a capability 

3 policy; and 

4 ^ if the blade device capabilities do not match the capability policy, isolating the blade 

5 device from a computing domain. 

l 

1 12. The method of claim 1 1 , further comprising: 

2 challenging the blade device to provide a response; and 

3 if the blade device does not provide the response, isolating the blade device from the 

4 computing domain. 

1 

l 13. The method of claim 1 1, wherein determining further comprises: 
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2 accessing a capability record associated with the blade. 

1 

1 14. The method of claim 1 1, further comprising: 

2 maintaining in a central repository a plurality of capability records, each capability record 

3 being associated with one of a plurality of blade devices. 

1 

1 15. The method of claim 12, wherein challenging further comprises: 

2 encrypting a challenge value using a public key value; and 

3 providing the encrypted challenge value to the blade device. 
1 

1 1 6. The method of claim 1 1 , further comprising: 

2 maintaining in a central repository a plurality of public key values, each of the public key 

3 values corresponding to one of a plurality of blade devices. 

l 

1 17. An article comprising: 

2 a machine-readable storage medium having a plurality of machine accessible instructions, 

3 which if executed by a machine, cause the machine to perform operations comprising: 

4 registering one or more capabilities with a central repository; 

5 determining if one or more capabilities associated with a blade device match a 

6 capability policy; and 
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7 if the blade device capabilities do not match the capability policy, isolating the blade 

8 device from a computing domain. 

1 

1 18. The article of claim 17, further comprising: 

2 a plurality of machine accessible instructions, which if executed by a machine, cause the 

3 machine to perform operations comprising: 

4 challenging the blade device to provide a response; and 

5 if the blade device does not provide the response, isolating the blade device from the 

6 computing domain. 

1 

1 19. The article of claim 17, wherein: 

2 the instructions that cause the machine to determine if one or more capabilities associated 

3 with a blade device match a capability policy further comprise instructions that cause the 

4 machine to access a capability record associated with the blade. 

1 

1 20. The article of claim 17, further comprising: 

2 a plurality of machine accessible instructions, which if executed by a machine, cause 

3 the machine to perform operations comprising: 

4 maintaining in a central repository a plurality of capability records, each 

5 capability record being associated with one of a plurality of blade devices. 



1 
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1 21. The article of claim 1 8, wherein: 

2 the instructions that cause the machine to challenge further comprise instructions that 

3 cause the machine to : 

4 encrypt a challenge value using a public key value; and 

5 provide the encrypted challenge value to the blade device. 
1 

1 22. The article of claim 17, further comprising: 

2 a plurality of machine accessible instructions, which if executed by a machine, cause the 

3 machine to perform operations comprising: 

4 maintaining in a central repository a plurality of public key values, each of the public 

5 key values corresponding to one of a plurality of blade devices. 

1 

1 23. A method comprising: 

2 registering one or more capabilities with a central repository; 

3 determining if a capability authorization has been received within a pre-defined timeout 

4 interval; 

5 if the capability authorization has been received within the timeout interval, performing 

6 boot processing; and 

7 if the capability authorization has not been received within the timeout interval, declining 

8 to perform the boot processing. 



1 
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1 24. The method of claim 23, further comprising: 

2 providing a response to a challenge; 

3 proceeding, if the response is correct, with boot processing; and 

4 if the response is not correct, isolating from a computing domain. 
1 

1 25. The method of claim 24, wherein: 

2 providing a response further comprises decrypting a challenge value using a private key. 
1 

1 26. The method of claim 23, wherein: 

2 declining to perform the boot processing further comprise performing stand-alone boot 

3 processing. 

1 

1 27. The method of claim 23, wherein: 

2 declining to perform the boot processing further comprises powering down. 
1 

1 28. An article comprising: 

2 a machine-readable storage medium having a plurality of machine accessible instructions, 

3 which if executed by a machine, cause the machine to perform operations comprising: 

4 registering one or more capabilities with a central repository; 
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5 determining if a capability authorization has been received within a pre-defined 

6 timeout interval; 

7 if the capability authorization has been received within the timeout interval, 

8 performing boot processing; and 

9 p if the capability authorization has not been received within the timeout interval, 
10 declining to perform the boot processing. 

1 

1 29. The article of claim 23, further comprising: 

2 a plurality of machine accessible instructions, which if executed by a machine, cause the 

3 machine to perform operations comprising: 

4 providing a response to a challenge; 

5 proceeding, if the response is correct, with boot processing; and 

6 if the response is not correct, isolating from a computing domain. 
1 

1 30. The article of claim 24, wherein: 

2 instructions that cause the machine to provide a response further comprise instructions 

3 that cause the machine to decrypt a challenge value using a private key. 

1 

1 31. The article of claim 23, wherein: 
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instructions that cause the computer to decline to perform the boot processing further 
comprise instructions that cause the machine to perform stand-alone boot processing. 

32. The article of claim 23, wherein: 

instructions that cause the computer to decline to. perform the boot processing further 
comprise instructions that cause the machine to power down. 
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